[ ] Warn user that nf2fa is not for allowing non authenticated connections. [ ] Test non-root user enroll. [ ] == Future == [ ] Securely compare strings. Where?! [ ] Bash auto completion [ ] In conf file, limit which users are allowed to do the enroll. [ ] Dynamic allocate my_ips, size in conf. [ ] move load_keys to keys.c? [ ] Clean keys from memory! Not possible, but use an XOR? [ ] We should also generate scratch codes. [ ] Save the bad_entries/my_ips tables on disk? [ ] conf: log file = syslog => syslog [ ] Command to open the firewall till close command received? [ ] When we give 'close' command, remove all IPs associated with that uid? Separate command! [ ] Open a port with a minimal web server to be able to unlock the firewall from a web browser (think Windows (missing pattern in ping) and phones). [ ] Add a client which is able to run from cron and keep sending 2fa codes to keep the "channel" open. Think about a vpn which should be open. Name of the command? Integrate this functionality in nf2fac? Where to store the key? In the same config file? [ ]